Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
FTP:OVERFLOW:WFTPD-MKD-OVERFLOW |
|---|---|
Severity |
Critical |
Recommended |
No |
Recommended Action |
Drop |
Category |
FTP |
Keywords |
WFTPD 'MKD' Command Buffer Overflow |
Release Date |
2003/04/25 |
Update Number |
1213 |
Supported Platforms |
di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
FTP: WFTPD 'MKD' Command Buffer Overflow
This signature detects attempts to exploit a known vulnerability against the MKD command in WFTPD server 2.34. Attackers can use MKD and CWD commands to create nested directories and execute arbitrary commands with system privileges.
Extended Description
WFTPD is reported prone to a remote buffer overflow vulnerability. The issue exists due to a lack of sufficient bounds checking performed on MKD and CWD arguments. It is reported that superfluous data passed to MKD first and then to CWD results in the overflow. This vulnerability may be exploited by a remote authenticate attacker to execute arbitrary code in the context of the affected service.
Affected Products
- Texas_imperial_software wftpd 2.34.0
- Texas_imperial_software wftpd 2.40.0
- Texas_imperial_software wftpd 3.0.0
References
- BugTraq: 747
- CVE: CVE-1999-0950